Re: [webcomponents] Consider exposing Shadom DOM and Custom Elements only in secure contexts (#449) from Sean Curtis on 2016-03-21 (public-webapps-github@w3.org from March 2016)

From: Sean Curtis <notifications@github.com>
Date: Mon, 21 Mar 2016 15:41:58 -0700
To: w3c/webcomponents <webcomponents@noreply.github.com>
Message-ID: <w3c/webcomponents/issues/449/199521146@github.com>

Please do not restrict web components to only secure contexts. Local testing and development will become unnecessarily more difficult, and anyone running a web app (utilising web components) on an internal server will have to jump through more hoops.

Please list the main security concern you have which would be solved by only providing web components on HTTPS.

Web components shouldn't be used in some carrot+stick scenario to convince people to move to HTTPS. There are much better carrots (and sticks) available.

---
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webcomponents/issues/449#issuecomment-199521146

Received on Monday, 21 March 2016 22:42:26 UTC